General

  • Target

    64d64f35ec0ffb03a41a70b026aace2f.exe

  • Size

    810KB

  • Sample

    200629-67hgy63hy6

  • MD5

    64d64f35ec0ffb03a41a70b026aace2f

  • SHA1

    6032c7a6133894e1c3528b91f778bc2b72e3b874

  • SHA256

    d8dbc896602791f2398a1af843abb3fba4927066b1b0c47228646354c6150fec

  • SHA512

    1920b89c5647a1ebfc418ca0d75535fb1d8a62159e3d9a62111f47ad1c4a9db26195f13f7940c9387f6917cb73e99ca418eb34b3f56775d34b68e38661165682

Score
6/10

Malware Config

Targets

    • Target

      64d64f35ec0ffb03a41a70b026aace2f.exe

    • Size

      810KB

    • MD5

      64d64f35ec0ffb03a41a70b026aace2f

    • SHA1

      6032c7a6133894e1c3528b91f778bc2b72e3b874

    • SHA256

      d8dbc896602791f2398a1af843abb3fba4927066b1b0c47228646354c6150fec

    • SHA512

      1920b89c5647a1ebfc418ca0d75535fb1d8a62159e3d9a62111f47ad1c4a9db26195f13f7940c9387f6917cb73e99ca418eb34b3f56775d34b68e38661165682

    Score
    6/10
    • Adds Run entry to start application

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Matrix ATT&CK v6

Persistence

Registry Run Keys / Startup Folder

1
T1060

Defense Evasion

Modify Registry

1
T1112

Command and Control

Web Service

1
T1102

Tasks